Releases: projectdiscovery/nuclei-templates
v9.5.1
🔥 Highlights of this release:
✅ [CVE-2023-32243] WordPress Elementor Lite 5.7.1 - Arbitrary Password Reset (@dhiyaneshdk) [critical]
✅ [CVE-2023-29923] PowerJob <=4.3.2 - Unauthenticated Access (@For3stCo1d) [medium]
✅ [CVE-2023-25717] Ruckus Wireless Admin - Remote Code Execution (@parthmalhotra,@pdresearch) [critical]
✅ [CVE-2023-2825] GitLab 16.0.0 - Path Traversal (@dhiyaneshdk,@rootxharsh,@iamnoooob,@pdresearch) [critical]
✅ [CVE-2023-2732] MStore API <= 3.9.2 - Authentication Bypass (@dhiyaneshdk) [critical]
✅ [CVE-2021-39165] Cachet <=2.3.18 - SQL Injection (@tess) [high]
✅ [CVE-2020-29583] ZyXel USG - Hardcoded Credentials (@canberbamber) [critical]
✅ [CVE-2020-1956] Apache Kylin 3.0.1 - Command Injection (@iamnoooob,@rootxharsh,@pdresearch) [high]
✅ [CVE-2016-3510] Oracle WebLogic Server - Remote Code Execution (@iamnoooob,@rootxharsh,@pdresearch) [critical]
What's Changed
New Templates Added: 56
New CVEs Added: 23
- http/cves/2023/CVE-2023-32243.yaml by @dhiyaneshdk 🔥
- http/cves/2023/CVE-2023-29923.yaml by @For3stCo1d 🔥
- http/cves/2023/CVE-2023-29919.yaml by @For3stCo1d
- http/cves/2023/CVE-2023-29887.yaml by @ctflearner
- http/cves/2023/CVE-2023-27482.yaml by @dhiyaneshdk
- http/cves/2023/CVE-2023-25717.yaml by @parthmalhotra,@pdresearch 🔥
- http/cves/2023/CVE-2023-2825.yaml by @dhiyaneshdk,@rootxharsh,@iamnoooob,@pdresearch 🔥
- http/cves/2023/CVE-2023-2780.yaml by @iamnoooob,@pdresearch
- http/cves/2023/CVE-2023-2732.yaml by @dhiyaneshdk 🔥
- http/cves/2023/CVE-2023-2356.yaml by @Co5mos
- http/cves/2023/CVE-2023-1434.yaml by @dhiyaneshdk
- http/cves/2022/CVE-2022-22733.yaml by @zeyad Azima
- http/cves/2022/CVE-2022-2733.yaml by @ctflearner
- http/cves/2021/CVE-2021-39165.yaml by @tess 🔥
- http/cves/2021/CVE-2021-37305.yaml by @ritikchaddha
- http/cves/2021/CVE-2021-37304.yaml by @ritikchaddha
- http/cves/2021/CVE-2021-24435.yaml by @xcapri,@ritikchaddha
- http/cves/2020/CVE-2020-29583.yaml by @canberbamber 🔥
- http/cves/2020/CVE-2020-1956.yaml by @iamnoooob,@rootxharsh,@pdresearch 🔥
- http/cves/2016/CVE-2016-4437.yaml by @iamnoooob,@rootxharsh,@pdresearch
- network/cves/2020/CVE-2020-11981.yaml by @pussycat0x
- network/cves/2017/CVE-2017-5645.yaml by @princechaddha
- network/cves/2016/CVE-2016-3510.yaml by @iamnoooob,@rootxharsh,@pdresearch 🔥
- http/cnvd/2023/CNVD-2023-12632.yaml by @daffainfo
- http/vulnerabilities/avtech/avtech-auth-bypass.yaml by @ritikchaddha
- http/vulnerabilities/avtech/avtech-dvr-ssrf.yaml by @ritikchaddha
- http/vulnerabilities/avtech/avtech-unauth-file-download.yaml by @ritikchaddha
- http/vulnerabilities/avtech/avtech-verification-bypass.yaml by @ritikchaddha
- http/vulnerabilities/weaver/ecology/ecology-mysql-config.yaml by @ritikchaddha
- http/vulnerabilities/zyxel/unauth-ztp-ping.yaml by @DMartyn
- http/misconfiguration/aem/aem-secrets.yaml by @boobooHQ,@j3ssie
- http/misconfiguration/ibm-websphere-xml.yaml by @r3nz0
- http/misconfiguration/sitecore-lfi.yaml by @dhiyaneshdk
- http/misconfiguration/teslamate-unauth-access.yaml by @For3stCo1d
- http/exposures/apis/jeecg-boot-swagger.yaml by @ritikchaddha
- http/exposures/configs/blazor-boot.yaml by @freakyclown
- http/exposures/configs/config-properties.yaml by @j4vaovo,@dhiyaneshdk
- http/exposures/tokens/azure/azure-connection.yaml by @dhiyaneshdk
- http/exposures/tokens/digitalocean/digital-ocean-personal-token.yaml by @dhiyaneshdk
- http/exposures/tokens/digitalocean/digitalocean-app-token.yaml by @dhiyaneshdk
- http/exposures/tokens/digitalocean/digitalocean-refresh.yaml by @dhiyaneshdk
- http/exposures/tokens/figma/figma-personal-token.yaml by @dhiyaneshdk
- http/exposed-panels/axway-api-manager-panel.yaml by @johnk3r
- http/exposed-panels/fortinet/fortinet-fortiddos-panel.yaml by @johnk3r
- http/exposed-panels/interactsoftware-interact.yaml by @righettod
- http/exposed-panels/isams-panel.yaml by @righettod
- http/exposed-panels/odoo-panel.yaml by @dhiyaneshdk
- http/exposed-panels/repetier-server-panel.yaml by @ritikchaddha
- http/exposed-panels/sauter-moduwebvision-panel.yaml by @righettod
- http/exposed-panels/shardingsphere-panel.yaml by @dhiyaneshdk
- ssl/insecure-cipher-suite-detect.yaml by @pussycat0x
- file/keys/azure/azure-connection-string.yaml by @dhiyaneshdk
- file/keys/digitalocean/digitalocean-access-token.yaml by @dhiyaneshdk
- file/keys/digitalocean/digitalocean-personal-access.yaml by @dhiyaneshdk
- file/keys/digitalocean/digitalocean-refresh-token.yaml by @dhiyaneshdk
- file/keys/figma-access-token.yaml by @dhiyaneshdk
New Contributors
- @ricardojba made their first contribution in #7221
- @PR05A1C made their first contribution in #7250
- @Zeyad-Azima made their first contribution in #7212
- @MillerMedia made their first contribution in #7264
- @waltersagehorn-praetorian made their first contribution in #7282
- @jub0bs made their first contribution in #7266
- @dm-ct made their first contribution in #7174
- @xcapri made their first contribution in #5615
- @mastercho made their first contribution in #7124
- @ruben-condor made their first contribution in #7304
Full Changelog: v9.5.0...v9.5.1
Nuclei Templates v9.5.0 (breaking changes)
Release Highlight:
- Nuclei Templates Refactoring: organized and categorized directory structure for improved management of nuclei templates.
- Enhanced CVE Templates: more comprehensive vulnerability analysis with added information like CPE and EPSS Score.
- Template Metadata: auto-generated
max-request
counter to each template, allowing easy filtering and visibility of maximum request. - Log4j Templates Update: updated templates addressing potential false positives related to Log4j.
- KEV & Trending CVEs: a curated selection of noteworthy Known Exploited Vulnerabilities (KEV) and Trending CVEs, highlighted with 🔥.
See nuclei-templates v9.5.0, projectdiscovery/nuclei#3648, https://blog.projectdiscovery.io/nuclei-template-v9-5-0-update/ for more details.
New Templates Added : 61
- http/cves/2023/CVE-2023-32235.yaml by @j3ssie 🔥
- http/cves/2023/CVE-2023-31059.yaml by @parthmalhotra,@pdresearch
- http/cves/2023/CVE-2023-30212.yaml by @theamanrawat
- http/cves/2023/CVE-2023-30210.yaml by @theamanrawat
- http/cves/2023/CVE-2023-29922.yaml by @Co5mos
- http/cves/2023/CVE-2023-29489.yaml by @dhiyaneshdk
- http/cves/2023/CVE-2023-27524.yaml by @dhiyaneshdk,@0xf4n9x
- http/cves/2023/CVE-2023-27350.yaml by @rootxharsh,@iamnoooob,@pdresearch 🔥
- http/cves/2023/CVE-2023-26360.yaml by @dhiyaneshdk 🔥
- http/cves/2023/CVE-2023-25135.yaml by @iamnoooob,@rootxharsh,@pdresearch 🔥
- http/cves/2023/CVE-2023-20864.yaml by @rootxharsh,@iamnoooob,@pdresearch 🔥
- http/cves/2023/CVE-2023-1671.yaml by @Co5mos 🔥
- http/cves/2023/CVE-2023-1020.yaml by @theamanrawat
- http/cves/2022/CVE-2022-46020.yaml by @theamanrawat
- http/cves/2022/CVE-2022-45038.yaml by @theamanrawat
- http/cves/2022/CVE-2022-45037.yaml by @theamanrawat
- http/cves/2022/CVE-2022-4328.yaml by @theamanrawat
- http/cves/2022/CVE-2022-42096.yaml by @theamanrawat
- http/cves/2022/CVE-2022-42095.yaml by @theamanrawat
- http/cves/2022/CVE-2022-3980.yaml by dabla
- http/cves/2022/CVE-2022-27985.yaml by @theamanrawat
- http/cves/2022/CVE-2022-27984.yaml by @theamanrawat
- http/cves/2022/CVE-2022-24716.yaml by @dhiyaneshdk 🔥
- http/cves/2022/CVE-2022-24266.yaml by @theamanrawat
- http/cves/2022/CVE-2022-24265.yaml by @theamanrawat
- http/cves/2022/CVE-2022-24264.yaml by @theamanrawat
- http/cves/2021/CVE-2021-44228.yaml by @melbadry9
- http/cves/2021/CVE-2021-30175.yaml by @edoardottt
- http/cves/2021/CVE-2021-27320.yaml by @theamanrawat
- http/cves/2021/CVE-2021-27319.yaml by @theamanrawat
- http/cves/2021/CVE-2021-27316.yaml by @theamanrawat
- http/cves/2021/CVE-2021-27315.yaml by @theamanrawat
- http/cves/2021/CVE-2021-27314.yaml by @theamanrawat
- http/cves/2020/CVE-2020-27481.yaml by @edoardottt
- http/cves/2019/CVE-2019-3398.yaml by @rootxharsh,@iamnoooob,@pdresearch
- http/cves/2017/CVE-2017-17731.yaml by @j4vaovo
- http/vulnerabilities/apache/apache-druid-kafka-connect-rce.yaml by @j4vaovo
- http/vulnerabilities/generic/generic-env.yaml by @kazet
- http/vulnerabilities/wordpress/advanced-booking-calendar-sqli.yaml by @theamanrawat
- http/vulnerabilities/wordpress/wp-autosuggest-sql-injection.yaml by @theamanrawat
- http/vulnerabilities/wordpress/wpml-xss.yaml by @bugvsme
- http/misconfiguration/apache/apache-zeppelin-unauth.yaml by @j4vaovo
- http/default-logins/powerjob-default-login.yaml by @j4vaovo
- http/default-logins/umami/umami-default-login.yaml by @barthy.koeln
- http/exposures/configs/platformio-ini.yaml by @dhiyaneshdk
- http/exposures/logs/nginx-shards.yaml by @dhiyaneshdk
- http/exposures/tokens/postman/postman-key.yaml by @dhiyaneshdk
- http/exposed-panels/eclipse-birt-panel.yaml by Shiva (Strobes Security)
- http/exposed-panels/jedox-web-panel.yaml by Team Syslifters
- http/exposed-panels/oracle-opera-login.yaml by @dhiyaneshdk
- http/exposed-panels/papercut-ng-panel.yaml by @ritikchaddha
- http/exposed-panels/proxmox-panel.yaml by @lum8rjack
- http/exposed-panels/red-lion-panel.yaml by @ritikchaddha
- http/exposed-panels/sophos-web-appliance.yaml by @dhiyaneshdk
- network/enumeration/smtp-commands-enum.yaml by @pussycat0x
- network/enumeration/smtp/smtp-user-enum.yaml by @pussycat0x
- http/fuzzing/ssrf-via-proxy.yaml by @geeknik,@petergrifin
- http/fuzzing/waf-fuzz.yaml by @dwisiswant0,@lu4nx,@Myst7ic
- http/osint/mail-archive.yaml by @lu4nx
- http/technologies/wordpress/plugins/gdpr-cookie-compliance.yaml by @ricardomaia
- file/keys/postman-api-key.yaml by @dhiyaneshdk
- headless/technologies/sap-spartacus.yaml by @TechbrunchFR
New Contributors
- @lum8rjack made their first contribution in #7110
- @barthy-koeln made their first contribution in #7164
- @mlec1 made their first contribution in #6967
- @ViCrack made their first contribution in #7182
- @j3ssie made their first contribution in #7188
- @chucklesb made their first contribution in #7195
- @david-bla made their first contribution in #7203
- @avisscr made their first contribution in #7172
Full Changelog: v9.4.3...v9.4.4
v9.4.3
What's Changed
New Templates Added: 55
- cves/2023/CVE-2023-29084.yaml by @rootxharsh,@iamnoooob,@pdresearch 🔥
- cves/2023/CVE-2023-27179.yaml by @theamanrawat
- cves/2023/CVE-2023-27159.yaml by @dhiyaneshdk
- cves/2023/CVE-2023-27008.yaml by @r3Y3r53
- cves/2023/CVE-2023-22897.yaml by @dhiyaneshdk 🔥
- cves/2023/CVE-2023-22620.yaml by @dhiyaneshdk 🔥
- cves/2023/CVE-2023-0099.yaml by @r3Y3r53
- cves/2022/CVE-2022-42094.yaml by @theamanrawat
- cves/2022/CVE-2022-41441.yaml by @r3Y3r53
- cves/2022/CVE-2022-38467.yaml by @r3Y3r53
- cves/2022/CVE-2022-38296.yaml by @theamanrawat
- cves/2022/CVE-2022-38295.yaml by @theamanrawat
- cves/2022/CVE-2022-37191.yaml by @theamanrawat
- cves/2022/CVE-2022-37190.yaml by @theamanrawat
- cves/2022/CVE-2022-28032.yaml by @theamanrawat
- cves/2022/CVE-2022-27926.yaml by @rootxharsh,@iamnoooob,@pdresearch 🔥
- cves/2022/CVE-2022-25497.yaml by @theamanrawat
- cves/2022/CVE-2022-25489.yaml by @theamanrawat
- cves/2022/CVE-2022-25488.yaml by @theamanrawat
- cves/2022/CVE-2022-25487.yaml by @theamanrawat 🔥
- cves/2022/CVE-2022-25486.yaml by @theamanrawat
- cves/2022/CVE-2022-25485.yaml by @theamanrawat
- cves/2022/CVE-2022-24223.yaml by @theamanrawat
- cves/2022/CVE-2022-4321.yaml by @r3Y3r53
- cves/2022/CVE-2022-3062.yaml by @r3Y3r53
- cves/2022/CVE-2022-2219.yaml by @r3Y3r53
- cves/2022/CVE-2022-1903.yaml by @theamanrawat
- cves/2022/CVE-2022-0864.yaml by @dhiyaneshdk
- cves/2022/CVE-2022-0846.yaml by @theamanrawat
- cves/2022/CVE-2022-0773.yaml by @theamanrawat
- cves/2022/CVE-2022-0769.yaml by @theamanrawat
- cves/2022/CVE-2022-0747.yaml by @theamanrawat
- cves/2021/CVE-2021-35250.yaml by @johnk3r,@pdteam 🔥
- cves/2021/CVE-2021-25078.yaml by @r3Y3r53
- cves/2020/CVE-2020-10199.yaml by @rootxharsh,@iamnoooob,@pdresearch 🔥
- cves/2017/CVE-2017-16894.yaml by @j4vaovo
- vulnerabilities/generic/cache-poisoning-xss.yaml by @melbadry9,@xElkomy,@akincibor
- vulnerabilities/huawei/huawei-firewall-lfi.yaml by @taielab
- vulnerabilities/others/universal-media-xss.yaml by @r3Y3r53
- vulnerabilities/wordpress/ldap-wp-login-xss.yaml by @r3Y3r53
- default-logins/trassir/trassir-default-login.yaml by @gtrrnr,@metascan
- exposures/logs/yii-error-page.yaml by @dhiyaneshdk
- misconfiguration/apollo-adminservice-unauth.yaml by @j4vaovo
- misconfiguration/default-spx-key.yaml by @vagnerd
- misconfiguration/sql-server-report-viewer.yaml by @kazet
- misconfiguration/thinkphp-errors.yaml by @j4vaovo
- exposed-panels/appwrite-panel.yaml by @ritikchaddha
- exposed-panels/aspect-control-panel.yaml by @JustaAcat
- network/detection/msmq-detect.yaml by @bhutch
- network/enumeration/beanstalk-service.yaml by @pussycat0x
- osint/hashnode.yaml by @cheesymoon
- osint/imgbb.yaml by @cheesymoon
- osint/rubygems.yaml by @cheesymoon
- technologies/default-apache-shiro.yaml by @dhiyaneshdk
- technologies/switch-protocol.yaml by @pdteam
New Contributors
- @gtrrnr made their first contribution in #7023
- @kimcy7316 made their first contribution in #5316
- @bhutch made their first contribution in #7091
- @dogancanbakir made their first contribution in #7060
Full Changelog: v9.4.2...v9.4.3
v9.4.2
What's Changed
New Templates Added: 78
- cves/2023/CVE-2023-24737.yaml by @r3Y3r53
- cves/2023/CVE-2023-24735.yaml by @r3Y3r53
- cves/2023/CVE-2023-24733.yaml by @r3Y3r53
- cves/2023/CVE-2023-24657.yaml by @r3Y3r53
- cves/2023/CVE-2023-24367.yaml by @r3Y3r53
- cves/2023/CVE-2023-24278.yaml by @r3Y3r53
- cves/2023/CVE-2023-1177.yaml by @iamnoooob,@pdresearch
- cves/2023/CVE-2023-1080.yaml by @r3Y3r53
- cves/2023/CVE-2023-0968.yaml by @r3Y3r53
- cves/2023/CVE-2023-0942.yaml by @r3Y3r53
- cves/2023/CVE-2023-0552.yaml by @r3Y3r53
- cves/2022/CVE-2022-48012.yaml by @r3Y3r53
- cves/2022/CVE-2022-46934.yaml by @r3Y3r53
- cves/2022/CVE-2022-45835.yaml by @theamanrawat
- cves/2022/CVE-2022-43769.yaml by @dwbzn
- cves/2022/CVE-2022-43140.yaml by @Co5mos
- cves/2022/CVE-2022-25125.yaml by @Co5mos
- cves/2022/CVE-2022-23898.yaml by @Co5mos
- cves/2022/CVE-2022-21661.yaml by @marcio Mendes
- cves/2022/CVE-2022-4140.yaml by @theamanrawat
- cves/2022/CVE-2022-3982.yaml by @theamanrawat
- cves/2022/CVE-2022-2756.yaml by @theamanrawat
- cves/2022/CVE-2022-2627.yaml by @ramondunker
- cves/2022/CVE-2022-2462.yaml by @dwisiswant0
- cves/2022/CVE-2022-1058.yaml by @theamanrawat
- cves/2022/CVE-2022-0827.yaml by @theamanrawat
- cves/2022/CVE-2022-0212.yaml by @theamanrawat
- cves/2021/CVE-2021-39152.yaml by @pwnhxl
- cves/2021/CVE-2021-39146.yaml by @pwnhxl
- cves/2021/CVE-2021-39144.yaml by @pwnhxl
- cves/2021/CVE-2021-39141.yaml by @pwnhxl
- cves/2021/CVE-2021-29505.yaml by @pwnhxl
- cves/2021/CVE-2021-24666.yaml by @theamanrawat
- cves/2021/CVE-2021-24351.yaml by @MAXIMUS Decimus
- cves/2021/CVE-2021-24239.yaml by @r3Y3r53
- cves/2021/CVE-2021-22502.yaml by @pikpikcu
- cves/2021/CVE-2021-21351.yaml by @pwnhxl
- cves/2021/CVE-2021-21345.yaml by @pwnhxl
- cves/2020/CVE-2020-26258.yaml by @pwnhxl
- cves/2020/CVE-2020-26217.yaml by @pwnhxl
- cves/2020/CVE-2020-13379.yaml by Joshua Rogers
- cves/2019/CVE-2019-15043.yaml by Joshua Rogers
- cves/2019/CVE-2019-12990.yaml by @gy741
- cves/2019/CVE-2019-12988.yaml by @gy741
- cves/2019/CVE-2019-12987.yaml by @gy741
- cves/2019/CVE-2019-12986.yaml by @gy741
- cves/2019/CVE-2019-12985.yaml by @gy741
- cves/2017/CVE-2017-9416.yaml by @Co5mos
- cves/2015/CVE-2015-2196.yaml by @theamanrawat
- cves/2014/CVE-2014-6287.yaml by @j4vaovo
- cves/2013/CVE-2013-7285.yaml by @pwnhxl
- cnvd/2020/CNVD-2020-26585.yaml by @pikpikcu,@Co5mos
- vulnerabilities/cisco/cisco-cloudcenter-suite-rce.yaml by @pwnhxl
- vulnerabilities/other/pmb-xss.yaml by @r3Y3r53
- vulnerabilities/wordpress/watu-xss.yaml by @r3Y3r53
- misconfiguration/cluster-panel.yaml by @tess
- misconfiguration/jupyter-lab-unauth.yaml by @j4vaovo
- misconfiguration/kubernetes/unauth-etcd-server.yaml by sharath,@pussycat0x
- misconfiguration/laravel-horizon-unauth.yaml by @vagnerd
- misconfiguration/mlflow-unauth.yaml by @pussycat0x
- default-logins/adminer-default-login.yaml by @j4vaovo
- exposed-panels/arcgis/arcgis-services.yaml by @HeeresS
- exposed-panels/arcgis/arcgis-tokens.yaml by @HeeresS
- exposed-panels/fortinet/fortinet-fortimanager-panel.yaml by @johnk3r
- exposed-panels/hestia-panel.yaml by @JustaAcat
- exposed-panels/i-mscp-panel.yaml by @JustaAcat
- exposed-panels/seagate-nas-login.yaml by @JustaAcat
- exposed-panels/sonic-wall-login.yaml by @JustaAcat
- exposed-panels/web-viewer-panel.yaml by @JustaAcat
- exposures/logs/opentsdb-status.yaml by @pussycat0x
- network/enumeration/kafka-topics-list.yaml by @pussycat0x
- ssl/kubernetes-fake-certificate.yaml by @kchason
- file/keys/github/github-outdated-key.yaml by @naglis
- technologies/cvsweb-detect.yaml by @lu4nx
- technologies/kubernetes/etcd/etcd-version.yaml by @pussycat0x
- technologies/openai-plugin.yaml by pdteam
- technologies/sitecore-cms.yaml by RandomDhiraj
- technologies/wordpress/plugins/host-webfonts-local.yaml by @ricardomaia
New Contributors
- @Co5mos made their first contribution in #6964
- @naglis made their first contribution in #6954
- @Marcio861 made their first contribution in #6952
- @j4vaovo made their first contribution in #6949
- @kchason made their first contribution in #6958
- @RootUp made their first contribution in #6953
- @Wade618 made their first contribution in #6960
- @JustaAcat made their first contribution in #6987
- @HeeresS made their first contribution in #6986
- @ramondunker made their first contribution in #6107
- @dwbzn made their first contribution in #7028
Full Changelog: v9.4.1...v9.4.2
v9.4.1
What's Changed
New Templates Added : 69
- cves/2023/CVE-2023-28432.yaml by @Mr-xn 🔥
- cves/2023/CVE-2023-28343.yaml by @pikpikcu 🔥
- cves/2023/CVE-2023-27587.yaml by @vagnerd
- cves/2023/CVE-2023-27292.yaml by @r3Y3r53
- cves/2023/CVE-2023-0261.yaml by @theamanrawat
- cves/2023/CVE-2023-0236.yaml by @r3Y3r53
- cves/2022/CVE-2022-31854.yaml by @theamanrawat
- cves/2022/CVE-2022-26833.yaml by @true13
- cves/2022/CVE-2022-4325.yaml by @r3Y3r53
- cves/2022/CVE-2022-4320.yaml by @r3Y3r53
- cves/2022/CVE-2022-4117.yaml by @theamanrawat
- cves/2022/CVE-2022-3933.yaml by @r3Y3r53
- cves/2022/CVE-2022-3908.yaml by @theamanrawat
- cves/2022/CVE-2022-3800.yaml by @JC175
- cves/2022/CVE-2022-1398.yaml by @theamanrawat
- cves/2022/CVE-2022-1329.yaml by @theamanrawat 🔥
- cves/2022/CVE-2022-0415.yaml by @theamanrawat
- cves/2022/CVE-2022-0206.yaml by @r3Y3r53
- cves/2021/CVE-2021-28419.yaml by @theamanrawat
- cves/2021/CVE-2021-24970.yaml by @r3Y3r53
- cves/2021/CVE-2021-24862.yaml by @theamanrawat
- cves/2021/CVE-2021-24452.yaml by @theamanrawat
- cves/2021/CVE-2021-24436.yaml by @theamanrawat
- cves/2020/CVE-2020-11530.yaml by @theamanrawat
- cves/2020/CVE-2020-14144.yaml by @theamanrawat
- cves/2020/CVE-2020-15867.yaml by @theamanrawat
- cves/2020/CVE-2020-7107.yaml by @theamanrawat
- vulnerabilities/gitea/gitea-rce.yaml by @theamanrawat
- vulnerabilities/splash/splash-render-ssrf.yaml by @pwnhxl
- exposed-panels/c2/cobalt-strike-c2.yaml by @pussycat0x
- misconfiguration/httponly-cookie-detect.yaml by Mr. Bobo HP
- misconfiguration/installer/gogs-installer.yaml by @dhiyaneshdk
- misconfiguration/nacos-authentication-bypass.yaml by @Esonhugh
- misconfiguration/unauth-apache-kafka-ui.yaml by @theamanrawat
- token-spray/api-networksdb.yaml by @0xpugazh
- ssl/untrusted-root-certificate.yaml by @pussycat0x
- file/audit/pfsense/configure-dns-server.yaml by @pussycat0x
- file/audit/pfsense/configure-session-timeout.yaml by @pussycat0x
- file/audit/pfsense/enable-https-protocol.yaml by @pussycat0x
- file/audit/pfsense/password-protected-consolemenu.yaml by @pussycat0x
- file/keys/adobe-secret.yaml by @dhiyaneshdk
- file/keys/age/age-identity-secret-key.yaml by @dhiyaneshdk
- file/keys/age/age-recipient-public-key.yaml by @dhiyaneshdk
- file/keys/amazon/amazon-account-id.yaml by @dhiyaneshdk
- file/keys/amazon/amazon-session-token.yaml by @dhiyaneshdk
- file/keys/code-climate-token.yaml by @dhiyaneshdk
- file/keys/cratesio-api-key.yaml by @dhiyaneshdk
- file/keys/facebook/fb-access-token.yaml by @dhiyaneshdk
- file/keys/gitlab/gitlab-personal-accesstoken.yaml by @dhiyaneshdk
- file/keys/gitlab/gitlab-pipeline-triggertoken.yaml by @dhiyaneshdk
- file/keys/gitlab/gitlab-runner-regtoken.yaml by @dhiyaneshdk
- file/keys/google/google-clientid.yaml by @dhiyaneshdk
- file/keys/google/google-oauth-clientsecret.yaml by @dhiyaneshdk
- file/keys/heroku-key.yaml by @dhiyaneshdk
- file/keys/jenkins-token.yaml by @dhiyaneshdk
- file/keys/newrelic/newrelic-pixie-apikey.yaml by @dhiyaneshdk
- file/keys/newrelic/newrelic-pixie-deploykey.yaml by @dhiyaneshdk
- file/keys/npm-accesstoken.yaml by @dhiyaneshdk
- file/keys/nuget-key.yaml by @dhiyaneshdk
- file/keys/openai-key.yaml by @dhiyaneshdk
- file/keys/pypi-token.yaml by @dhiyaneshdk
- file/keys/rubygems-key.yaml by @dhiyaneshdk
- file/keys/sauce-access-token.yaml by @dhiyaneshdk
- file/keys/segment-public-api.yaml by @dhiyaneshdk
- file/keys/shopify-public-access.yaml by @dhiyaneshdk
- file/keys/telegram-token.yaml by @dhiyaneshdk
- technologies/icecast-mediaserver-detect.yaml by @pussycat0x
- technologies/splash-rendering-service.yaml by @pussycat0x
- technologies/thinkphp-detect.yaml by @pwnhxl
New Contributors
- @vagnerd made their first contribution in #6903
- @Esonhugh made their first contribution in #6912
- @kazet made their first contribution in #6931
- @JC175 made their first contribution in #6772
- @ThePirateWhoSmellsOfSunflowers made their first contribution in #6939
- @sl4x0 made their first contribution in #6943
- @MrHarshvardhan made their first contribution in #6756
Full Changelog: v9.4.0...v9.4.1
v9.4.0
What's Changed
- Fixed cves/2022/CVE-2022-45362.yaml by @Bisstocuz
New Templates Added: 65
- cves/2023/CVE-2023-26255.yaml by @dhiyaneshdk
- cves/2023/CVE-2023-26256.yaml by @pikpikcu
- cves/2022/CVE-2022-47002.yaml by @iamnoooob,@rootxharsh,@pdresearch
- cves/2022/CVE-2022-47003.yaml by @iamnoooob,@rootxharsh,@pdresearch
- cves/2019/CVE-2019-6799.yaml by @pwnhxl
- cves/2017/CVE-2017-14524.yaml by @0x_Akoko
- cves/2015/CVE-2015-2863.yaml by @0x_Akoko
- vulnerabilities/other/brightsign-dsdws-ssrf.yaml by @0x_Akoko
- vulnerabilities/php/php-xdebug-rce.yaml by @pwnhxl
- vulnerabilities/phpmyadmin-unauth.yaml by @pwnhxl
- vulnerabilities/ueditor/ueditor-ssrf.yaml by @pwnhxl
- vulnerabilities/ueditor/ueditor-xss.yaml by @pwnhxl
- misconfiguration/apache/apache-nifi-unauth.yaml by @pwnhxl
- misconfiguration/everything-listing.yaml by @pussycat0x
- misconfiguration/installer/magnolia-installer.yaml by @pussycat0x
- misconfiguration/laravel-debug-infoleak.yaml by @pwnhxl
- default-logins/magnolia-default-login.yaml by @pussycat0x
- exposed-panels/magnolia-panel.yaml by @pussycat0x
- exposed-panels/veriz0wn-osint.yaml by @pussycat0x
- exposures/files/reactapp-env-js.yaml by @random-robbie
- exposures/tokens/adobe/adobe-oauth-secret.yaml by @dhiyaneshdk
- exposures/tokens/age/age-public-key.yaml by @dhiyaneshdk
- exposures/tokens/age/age-secret-key.yaml by @dhiyaneshdk
- exposures/tokens/amazon/aws-account-id.yaml by @dhiyaneshdk
- exposures/tokens/amazon/aws-api-key.yaml by @dhiyaneshdk
- exposures/tokens/amazon/aws-session-token.yaml by @dhiyaneshdk
- exposures/tokens/codeclimate/codeclimate-token.yaml by @dhiyaneshdk
- exposures/tokens/crates/crates-api-key.yaml by @dhiyaneshdk
- exposures/tokens/dynatrace/dynatrace-api-token.yaml by @dhiyaneshdk
- exposures/tokens/facebook/facebook-access-token.yaml by @dhiyaneshdk
- exposures/tokens/github/github-app.yaml by @dhiyaneshdk
- exposures/tokens/github/github-oauth-access.yaml by @dhiyaneshdk
- exposures/tokens/github/github-personal-access.yaml by @dhiyaneshdk
- exposures/tokens/github/github-refresh.yaml by @dhiyaneshdk
- exposures/tokens/gitlab/gitlab-personal-token.yaml by @dhiyaneshdk
- exposures/tokens/gitlab/gitlab-pipeline-token.yaml by @dhiyaneshdk
- exposures/tokens/gitlab/gitlab-runner-token.yaml by @dhiyaneshdk
- exposures/tokens/google/google-client-id.yaml by @dhiyaneshdk
- exposures/tokens/google/google-oauth-prefixed.yaml by @dhiyaneshdk
- exposures/tokens/heroku/heroku-api-key.yaml by @dhiyaneshdk
- exposures/tokens/jenkins/jenkins-crumb-token.yaml by @dhiyaneshdk
- exposures/tokens/mailgun/mailgun-api-token.yaml by @dhiyaneshdk
- exposures/tokens/newrelic/newrelic-pixie-api-key.yaml by @dhiyaneshdk
- exposures/tokens/newrelic/newrelic-pixie-deploy-key.yaml by @dhiyaneshdk
- exposures/tokens/npm/npm-access-token.yaml by @dhiyaneshdk
- exposures/tokens/nuget/nuget-api-key.yaml by @dhiyaneshdk
- exposures/tokens/openai/openai-api-key.yaml by @dhiyaneshdk
- exposures/tokens/pypi/pypi-upload-token.yaml by @dhiyaneshdk
- exposures/tokens/ruby/rubygems-api-key.yaml by @dhiyaneshdk
- exposures/tokens/sauce/sauce-token.yaml by @dhiyaneshdk
- exposures/tokens/segment/segment-public-token.yaml by @dhiyaneshdk
- exposures/tokens/shopify/shopify-app-secret.yaml by @dhiyaneshdk
- exposures/tokens/shopify/shopify-customapp-token.yaml by @dhiyaneshdk
- exposures/tokens/shopify/shopify-legacy-token.yaml by @dhiyaneshdk
- exposures/tokens/shopify/shopify-public-token.yaml by @dhiyaneshdk
- exposures/tokens/square/square-access.yaml by @dhiyaneshdk
- exposures/tokens/square/square-oauth-secret-token.yaml by @dhiyaneshdk
- exposures/tokens/stackhawk/stackhawk-api.yaml by @dhiyaneshdk
- exposures/tokens/telegram/telegram-bot-token.yaml by @dhiyaneshdk
- exposures/tokens/twilio/twilio-api-key.yaml by @dhiyaneshdk
- technologies/nacos-version.yaml by @arm!tage
- osint/couchsurfing.yaml by @philippedelteil
- ssl/revoked-ssl-certificate.yaml by @pussycat0x
- file/js/js-analyse.yaml by @ayadim
- file/audit/pfsense/set-hostname.yaml by @pussycat0x
New Contributors
- @ayadim made their first contribution in #6868
- @Bisstocuz made their first contribution in #6914
Full Changelog: v9.3.9...v9.4.0
v9.3.9
What's Changed
New Templates Added : 61
- cves/2023/CVE-2023-23492.yaml by @r3Y3r53
- cves/2022/CVE-2022-0693.yaml by @theamanrawat
- cves/2022/CVE-2022-0760.yaml by @theamanrawat
- cves/2022/CVE-2022-0949.yaml by @theamanrawat
- cves/2022/CVE-2022-1013.yaml by @theamanrawat
- cves/2022/CVE-2022-3934.yaml by @r3Y3r53
- cves/2022/CVE-2022-4060.yaml by @theamanrawat
- cves/2022/CVE-2022-4063.yaml by @theamanrawat
- cves/2022/CVE-2022-4301.yaml by @r3Y3r53
- cves/2022/CVE-2022-4306.yaml by @r3Y3r53
- cves/2022/CVE-2022-45805.yaml by @theamanrawat
- cves/2022/CVE-2022-46888.yaml by @r3Y3r53
- cves/2022/CVE-2022-48165.yaml by @For3stCo1d
- cves/2022/CVE-2022-4897.yaml by @r3Y3r53
- cves/2021/CVE-2021-24145.yaml by @theamanrawat
- cves/2021/CVE-2021-24155.yaml by @theamanrawat
- cves/2021/CVE-2021-24169.yaml by @r3Y3r53
- cves/2021/CVE-2021-24287.yaml by @r3Y3r53
- cves/2021/CVE-2021-24347.yaml by @theamanrawat
- cves/2021/CVE-2021-24554.yaml by @theamanrawat
- cves/2021/CVE-2021-24875.yaml by @r3Y3r53
- cves/2021/CVE-2021-24931.yaml by @theamanrawat
- cves/2021/CVE-2021-25067.yaml by @theamanrawat
- cves/2021/CVE-2021-27520.yaml by @r3Y3r53
- cves/2019/CVE-2019-5434.yaml by @omarjezi
- cves/2018/CVE-2018-16159.yaml by @theamanrawat
- cves/2017/CVE-2017-14622.yaml by @r3Y3r53
- cves/2015/CVE-2015-2755.yaml by @r3Y3r53
- cves/2015/CVE-2015-4062.yaml by @r3Y3r53
- cves/2015/CVE-2015-4063.yaml by @r3Y3r53
- cves/2015/CVE-2015-9312.yaml by @r3Y3r53
- network/cves/2011/CVE-2011-2523.yaml by @pussycat0x
- vulnerabilities/cisco/cisco-cloudcenter-suite-rce.yaml by pwnhxl
- vulnerabilities/discuz-downremoteimg-ssrf.yaml by pwnhxl
- vulnerabilities/skywalking/skywalking-log4j-rce.yaml by pwnhxl
- vulnerabilities/wordpress/3d-print-lite-xss.yaml by @r3Y3r53
- vulnerabilities/wordpress/wp-touch-redirect.yaml by @r3Y3r53
- misconfiguration/kubernetes/kube-state-metrics.yaml by @ja1sh
- exposed-panels/axway-securetransport-panel.yaml by @righettod
- exposed-panels/axway-securetransport-webclient.yaml by @righettod
- exposed-panels/dynatrace-panel.yaml by @ja1sh
- exposed-panels/gnu-mailman.yaml by Matt Galligan
- exposed-panels/kubeview-dashboard.yaml by @ja1sh
- exposed-panels/sensu-panel.yaml by @ja1sh
- exposed-panels/signet-explorer-dashboard.yaml by @ritikchaddha
- exposed-panels/wmw-enterprise-panel.yaml by Matt Galligan
- ssl/mismatched-ssl-certificate.yaml by @pdteam
- file/audit/pfsense/known-default-account.yaml by @pussycat0x
- osint/cal.yaml by @olearycrew
- osint/ctflearn.yaml by @olearycrew
- osint/npmjs.yaml by @olearycrew
- osint/platzi.yaml by @philippedelteil
- osint/polywork.yaml by @olearycrew
- osint/postnews.yaml by @olearycrew
- osint/skillshare.yaml by @olearycrew
- osint/tmdb.yaml by @olearycrew
- osint/tryhackme.yaml by @olearycrew
- technologies/ambassador-edge-stack-detect.yaml by @ja1sh
- technologies/limesurvey-detect.yaml by Matt Galligan
- technologies/nimplant-c2.yaml by @ja1sh
- technologies/wordpress/plugins/wpvivid-backuprestore.yaml by @ricardomaia
New Contributors
- @pwnhxl made their first contribution in #6816
- @ja1sh made their first contribution in #6802
- @SergeyRyadinskikh made their first contribution in #6807
- @JorianWoltjer made their first contribution in #6815
- @Yablargo made their first contribution in #6683
- @topscoder made their first contribution in #6826
- @olearycrew made their first contribution in #6827
- @zy9ard3 made their first contribution in #6808
Full Changelog: v9.3.8...v9.3.9
v9.3.8 [Treasure Trove of OSINT Templates]
What's Changed
Upgrade Your OSINT Game with Comprehensive OSINT Nuclei Templates
New Templates Added : 656
- cves/2023/CVE-2023-24322.yaml by @pikpikcu
- cves/2023/CVE-2023-23752.yaml by badboycxcc,Sascha Brendel
- cves/2023/CVE-2023-23489.yaml by @theamanrawat
- cves/2023/CVE-2023-23488.yaml by @dwisiswant0
- cves/2022/CVE-2022-39952.yaml by @dwisiswant0 🔥
- cves/2022/CVE-2022-28923.yaml by Sascha Brendel,@dhiyaneshdk
- cves/2022/CVE-2022-2599.yaml by @ritikchaddha
- cves/2021/CVE-2021-36580.yaml by @dhiyaneshdk
- cves/2021/CVE-2021-30134.yaml by @theamanrawat
- cves/2021/CVE-2021-25299.yaml by @ritikchaddha
- cves/2021/CVE-2021-25298.yaml by @k0pak4
- cves/2021/CVE-2021-25297.yaml by @k0pak4
- cves/2021/CVE-2021-25296.yaml by @k0pak4
- cves/2018/CVE-2018-6184.yaml by @dhiyaneshdk
- vulnerabilities/other/nextjs-redirect.yaml by @dhiyaneshdk
- vulnerabilities/wordpress/seatreg-redirect.yaml by Mariam Tariq
- default-logins/nagios/nagiosxi-default-login.yaml by @ritikchaddha
- exposures/logs/dozzle-container-logs.yaml by @theabhinavgaur
- exposures/tokens/mapbox/mapbox-token-disclosure.yaml by @Devang-Solanki
- exposures/tokens/razorpay/razorpay-clientid-disclosure.yaml by @Devang-Solanki
- misconfiguration/oneinstack-control-center.yaml by @theabhinavgaur
- misconfiguration/tls-sni-proxy.yaml by @pdteam
- misconfiguration/typo3-composer.yaml by @0x_Akoko
- exposed-panels/c2/covenant-c2.yaml by @pussycat0x
- exposed-panels/c2/deimos-c2.yaml by @pussycat0x
- exposed-panels/c2/metasploit-c2.yaml by @pussycat0x
- exposed-panels/c2/mythic-c2.yaml by @pussycat0x
- exposed-panels/elemiz-network-manager.yaml by @pussycat0x
- exposed-panels/fortinet/fortinet-fortinac-panel.yaml by @johnk3r
- exposed-panels/freeipa-panel.yaml by @dhiyaneshdk
- iot/ampguard-wifi-setup.yaml by @pussycat0x
- technologies/mojoportal-detect.yaml by @pikpikcu
[+] OSINT Nuclei Templates 🔥
- osint/1001mem.yaml by @dwisiswant0
- osint/21buttons.yaml by @dwisiswant0
- osint/247sports.yaml by @dwisiswant0
- osint/3dnews.yaml by @dwisiswant0
- osint/3dtoday.yaml by @dwisiswant0
- osint/7cup.yaml by @dwisiswant0
- osint/7dach.yaml by @dwisiswant0
- osint/aaha-chat.yaml by @dwisiswant0
- osint/aboutme.yaml by @dwisiswant0
- osint/acf.yaml by @dwisiswant0
- osint/admire-me.yaml by @dwisiswant0
- osint/adult-forum.yaml by @dwisiswant0
- osint/adultism.yaml by @dwisiswant0
- osint/advfn.yaml by @dwisiswant0
- osint/aflam.yaml by @dwisiswant0
- osint/airline-pilot-life.yaml by @dwisiswant0
- osint/airliners.yaml by @dwisiswant0
- osint/akniga.yaml by @dwisiswant0
- osint/albicla.yaml by @dwisiswant0
- osint/alik.yaml by @dwisiswant0
- osint/allesovercrypto.yaml by @dwisiswant0
- osint/allmylinks.yaml by @dwisiswant0
- osint/alloannonces.yaml by @dwisiswant0
- osint/alltrails.yaml by @dwisiswant0
- osint/ameblo.yaml by @dwisiswant0
- osint/americanthinker.yaml by @dwisiswant0
- osint/animeplanet.yaml by @dwisiswant0
- osint/anobii.yaml by @dwisiswant0
- osint/anonup.yaml by @dwisiswant0
- osint/apex-legends.yaml by @dwisiswant0
- osint/appian.yaml by @dwisiswant0
- osint/apteka.yaml by @dwisiswant0
- osint/archive-of-our-own-account.yaml by @dwisiswant0
- osint/arduino.yaml by @dwisiswant0
- osint/armorgames.yaml by @dwisiswant0
- osint/artbreeder.yaml by @dwisiswant0
- osint/artists-clients.yaml by @dwisiswant0
- osint/artstation.yaml by @dwisiswant0
- osint/asciinema.yaml by @dwisiswant0
- osint/askfm.yaml by @dwisiswant0
- osint/audiojungle.yaml by @dwisiswant0
- osint/auru.yaml by @dwisiswant0
- osint/authorstream.yaml by @dwisiswant0
- osint/avid-community.yaml by @dwisiswant0
- osint/babepedia.yaml by @dwisiswant0
- osint/babypips.yaml by @dwisiswant0
- osint/bandcamp.yaml by @dwisiswant0
- osint/bandlab.yaml by @dwisiswant0
- osint/bblog-ru.yaml by @dwisiswant0
- osint/bdsmlr.yaml by @dwisiswant0
- osint/bdsmsingles.yaml by @dwisiswant0
- osint/behance.yaml by @dwisiswant0
- osint/bentbox.yaml by @dwisiswant0
- osint/biggerpockets.yaml by @dwisiswant0
- osint/bigo-live.yaml by @dwisiswant0
- osint/bikemap.yaml by @dwisiswant0
- osint/bimpos.yaml by @dwisiswant0
- osint/biolink.yaml by @dwisiswant0
- osint/bitbucket.yaml by @dwisiswant0
- osint/bitchute.yaml by @dwisiswant0
- osint/bitcoin-forum.yaml by @dwisiswant0
- osint/bittube.yaml by @dwisiswant0
- osint/blipfm.yaml by @dwisiswant0
- osint/blogger.yaml by @dwisiswant0
- osint/blogipl.yaml by @dwisiswant0
- osint/blogmarks.yaml by @dwisiswant0
- osint/blogspot.yaml by @dwisiswant0
- osint/bodybuildingcom.yaml by @dwisiswant0
- osint/bonga-cams.yaml by @dwisiswant0
- osint/bookcrossing.yaml by @dwisiswant0
- osint/boosty.yaml by @dwisiswant0
- osint/booth.yaml by @dwisiswant0
- osint/breach-forums.yaml by @dwisiswant0
- osint/brickset.yaml by @dwisiswant0
- osint/bugcrowd.yaml by @dwisiswant0
- osint/bunpro.yaml by @dwisiswant0
- osint/buymeacoffee.yaml by @dwisiswant0
- osint/buzzfeed.yaml by @dwisiswant0
- osint/buzznet.yaml by @dwisiswant0
- osint/cafecito.yaml by @dwisiswant0
- osint/calendy.yaml by @dwisiswant0
- osint/cameo.yaml by @dwisiswant0
- osint/carbonmade.yaml by @dwisiswant0
- osint/careerhabr.yaml by @dwisiswant0
- osint/caringbridge.yaml by @dwisiswant0
- osint/carrdco.yaml by @dwisiswant0
- osint/cashapp.yaml by @dwisiswant0
- osint/castingcallclub.yaml by @dwisiswant0
- osint/cd-action.yaml by @dwisiswant0
- osint/cdapl.yaml by @dwisiswant0
- osint/championat.yaml by @dwisiswant0
- osint/chamsko.yaml by @dwisiswant0
- osint/chaturbate.yaml by @dwisiswant0
- osint/cheezburger.yaml by @dwisiswant0
- osint/chesscom.yaml by @dwisiswant0
- osint/chomikujpl.yaml by @dwisiswant0
- osint/chyoa.yaml by @dwisiswant0
- osint/climatejusticerocks-mastodon-instance.yaml by @dwisiswant0
- osint/cloudflare.yaml by @dwisiswant0
- osint/clubhouse.yaml by @dwisiswant0
- osint/clusterdafrica.yaml by @dwisiswant0
- osint/cnet.yaml by @dwisiswant0
- osint/codeberg.yaml by @dwisiswant0
- osint/codecademy.yaml by @dwisiswant0
- osint/codeforces.yaml by @dwisiswant0
- osint/codementor.yaml by @dwisiswant0
- osint/coderwall.yaml by @dwisiswant0
- osint/codewars.yaml by @dwisiswant0
- osint/cohost.yaml by @dwisiswant0
- osint/colourlovers.yaml by @dwisiswant0
- osint/contactossex.yaml by @dwisiswant0
- osint/coroflot.yaml by @dwisiswant0
- osint/cowboys4angels.yaml by @dwisiswant0
- osint/cracked-io.yaml by @dwisiswant0
- osint/cracked.yaml by @dwisiswant0
- osint/crevado.yaml by @dwisiswant0
- osint/crowdin.yaml by @dwisiswant0
- osint/cults3d.yaml by @dwisiswant0
- osint/curiouscat.yaml by @dwisiswant0
- osint/cytoid.yaml by @dwisiswant0
- osint/dailymotion.yaml by @dwisiswant0
- osint/darudar.yaml by @dwisiswant0
- osint/dateinasia.yaml by @dwisiswant0
- osint/datezone.yaml by @dwisiswant0
- osint/datingru.yaml by @dwisiswant0
- osint/demotywatory.yaml by @dwisiswant0
- osint/depop.yaml by @dwisiswant0
- osint/designspriation.yaml by @dwisiswant0
- osint/destructoid.yaml by @dwisiswant0
- osint/deviantart.yaml by @dwisiswant0
- osint/devrant.yaml by @dwisiswant0
- osint/devto.yaml by @dwisiswant0
- osint/dfgames.yaml by @dwisiswant0
- osint/diablo.yaml by @dwisiswant0
- osint/dibiz.yaml by @dwisiswant0
- osint/digitalspy.yaml by @dwisiswant0
- osint/diigo.yaml by @dwisiswant0
- osint/disabledrocks-mastodon-instance.yaml by @dwisiswant0
- osint/discogs.yaml by @dwisiswant0
- osint/discourse.yaml by @dwisiswant0
- osint/discusselasticco.yaml by @dwisiswant0
- osint/discusssocial-mastodon-instance.yaml by @dwisiswant0
- osint/disqus.yaml by @dwisiswant0
- osint/dissenter.yaml by @dwisiswant0
- osint/dockerhub.yaml by @dwisiswant0
- osint/dojoverse.yaml by @dwisiswant0
- osint/donation-alerts.yaml by @dwisiswant0
- osint/dotcards.yaml by @dwisiswant0
- osint/dribbble.yaml by @dwisiswant0
- osint/droners.yaml by @dwisiswant0
- osint/drum.yaml by @dwisiswant0
- osint/duolingo.yaml by @dwisiswant0
- osint/easyen.yaml by @dwisiswant0
- osint/ebay-stores.yaml by @dwisiswant0
- osint/ebay.yaml by @dwisiswant0
- osint/elloco.yaml by @dwisiswant0
- osint/engadget.yaml by @dwisiswant0
- osint/eporner.yaml by @dwisiswant0
- osint/etoro.yaml by @dwisiswant0
- osint/etsy.yaml by @dwisiswant0
- osint/expressionalsocial-mastodon-instance.yaml by @dwisiswant0
- osint/extralunchmoney.yaml by @dwisiswant0
- osint/eyeem.yaml by @dwisiswant0
- osint/f3.yaml by @dwisiswant0
- osint/fabswingers.yaml by @dwisiswant0
- osint/faktopedia.yaml by @dwisiswant0
- osint/fancentro.yaml by @dwisiswant0
- osint/fandalism.yaml by @dwisiswant0
- osint/fandom.yaml by @dwisiswant0
- osint/fanpop.yaml by @dwisiswant0
- osint/fansly.yaml by @dwisiswant0
- osint/fark.yaml by @dwisiswant0
- osint/farkascity.yaml by @dwisiswant0
- osint/fatsecret.yaml by @dwisiswant0
- osint/fcv.yaml by @dwisiswant0
- osint/federatedpress-mastodon-instance.yaml by @dwisiswant0
- osint/figma.yaml by @dwisiswant0
- osint/filmweb.yaml by @dwisiswant0
- osint/fine-art-america.yaml by @dwisiswant0
- osint/fiverr.yaml by @dwisiswant0
- osint/flickr.yaml by @dwisiswant0
- osint/flipboard.yaml by @dwisiswant0
- osint/flowcode.yaml by @dwisiswant0
- osint/fodors-forum.yaml by @dwisiswant0
- osint/fortnite-tracker.yaml by @dwisiswant0
- osint/forumprawneorg.yaml by @dwisiswant0
- osint/fosstodonorg-mastodon-instance.yaml by @dwisiswant0
- osint/fotka.yaml by @dwisiswant0
- osint/foursquare.yaml by @dwisiswant0
- osint/freelancer.yaml by @dwisiswant0
- osint/freesound.yaml by @dwisiswant0
- osint/friendfinder-x.yaml by @dwisiswant0
- osint/friendfinder.yaml by @dwisiswant0
- osint/friendweb.yaml by @dwisiswant0
- osint/furaffinity.yaml by @dwisiswant0
- osint/furiffic.yaml by @dwisiswant0
- osint/gab.yaml by @dwisiswant0
- osint/game-debate.yaml by @dwisiswant0
- osint/gamespot.yaml by @dwisiswant0
- osint/garmin-conne...
v9.3.7
What's Changed
New Templates Added : 58
- cves/2023/CVE-2023-24044.yaml by @pikpikcu
- cves/2023/CVE-2023-0669.yaml by @rootxharsh,@iamnoooob,@dhiyaneshdk,@pdresearch 🔥
- cves/2022/CVE-2022-47986.yaml by coldfish 🔥
- cves/2022/CVE-2022-4447.yaml by @theamanrawat
- cves/2022/CVE-2022-36446.yaml by @gy741 🔥
- cves/2022/CVE-2022-34753.yaml by @gy741
- cves/2022/CVE-2022-31499.yaml by @pikpikcu
- cves/2021/CVE-2021-25899.yaml by @edoardottt
- cves/2021/CVE-2021-25114.yaml by @theamanrawat 🔥
- cves/2020/CVE-2020-15895.yaml by @edoardottt
- cves/2015/CVE-2015-2996.yaml by @0x_Akoko
- default-logins/jboss/jboss-jbpm-default-login.yaml by @dhiyaneshdk
- dns/dmarc-detect.yaml by juliosmelo
- exposed-panels/caton-network-manager-system.yaml by @pussycat0x
- exposed-panels/ewm-manager-panel.yaml by @pussycat0x
- exposed-panels/exagrid-manager-panel.yaml by @pussycat0x
- exposed-panels/group-ib-panel.yaml by @dhiyaneshdk
- exposed-panels/jboss/jboss-jbpm-admin.yaml by @dhiyaneshdk
- exposed-panels/jboss/jboss-soa-platform.yaml by @ritikchaddha
- exposed-panels/kraken-cluster-monitoring.yaml by @pussycat0x
- exposed-panels/metasploit-setup-page.yaml by @ritikchaddha
- exposed-panels/normhost-backup-server-manager.yaml by @pussycat0x
- exposed-panels/nsq-admin-panel.yaml by @random-robbie
- exposed-panels/o2-easy-panel.yaml by @ritikchaddha
- exposed-panels/powercom-network-manager.yaml by @pussycat0x
- exposed-panels/redis-enterprise-panel.yaml by tess
- exposed-panels/sevone-nms-network-manager.yaml by @pussycat0x
- exposed-panels/spacelogic-cbus-panel.yaml by @ritikchaddha
- exposed-panels/symantec/symantec-iam-console.yaml by @therealtoastycat
- exposed-panels/watcher-panel.yaml by @dhiyaneshdk
- exposed-panels/yellowfin-panel.yaml by @dhiyaneshdk
- exposures/configs/accueil-wampserver.yaml by tess
- exposures/configs/jkstatus-manager.yaml by pdteam,@dhiyaneshdk
- iot/loytec-device.yaml by @pussycat0x
- iot/ulanzi-clock.yaml by @fabaff
- misconfiguration/apache-struts-showcase.yaml by @dhiyaneshdk
- misconfiguration/ganglia-cluster-dashboard.yaml by @ritikchaddha
- misconfiguration/installer/atlassian-bamboo-setup-wizard.yaml by @pussycat0x
- misconfiguration/installer/indegy-sensor-installer.yaml by @ritikchaddha
- misconfiguration/installer/jira-setup.yaml by @ritikchaddha
- misconfiguration/jboss-web-service.yaml by @dhiyaneshdk
- misconfiguration/moleculer-microservices.yaml by @pussycat0x
- misconfiguration/multilaser-pro-setup.yaml by @ritikchaddha
- misconfiguration/ngrok-status-page.yaml by @pussycat0x
- misconfiguration/php-src-disclosure.yaml by pdteam
- misconfiguration/setup-github-enterprise.yaml by tess
- misconfiguration/slurm-hpc-dashboard.yaml by @ritikchaddha
- misconfiguration/struts-ognl-console.yaml by @dhiyaneshdk
- misconfiguration/transmission-dashboard.yaml by @fabaff
- misconfiguration/unauth-axyom-network-manager.yaml by @pussycat0x
- network/detection/rtsp-detect.yaml by @pussycat0x
- network/enumeration/mongodb-info-enum.yaml by @pussycat0x
- technologies/connectwise-control-detect.yaml by @pikpikcu
- technologies/openhap-detect.yaml by @fabaff
- technologies/utility-service-detect.yaml by @dhiyaneshdk
- technologies/zope-detect.yaml by @pikpikcu
- vulnerabilities/avaya/avaya-aura-rce.yaml by @dhiyaneshdk 🔥
- vulnerabilities/avaya/avaya-aura-xss.yaml by @dhiyaneshdk
Full Changelog: v9.3.6...v9.3.7
v9.3.6
What's Changed
New Templates Added : 31
- cves/2022/CVE-2022-39195.yaml by @arafatansari
- cves/2022/CVE-2022-32429.yaml by @theabhinavgaur
- cves/2022/CVE-2022-1168.yaml by @akincibor
- cves/2017/CVE-2017-1000163.yaml by @0x_Akoko
- vulnerabilities/other/academy-lms-xss.yaml by @arafatansari
- vulnerabilities/other/slims-xss.yaml by @arafatansari
- vulnerabilities/other/sound4-file-disclosure.yaml by @arafatansari
- vulnerabilities/other/tikiwiki-xss.yaml by @arafatansari
- vulnerabilities/vmware/vmware-cloud-xss.yaml by tess
- misconfiguration/esphome-dashboard.yaml by @ritikchaddha
- misconfiguration/installer/nagiosxi-installer.yaml by @ritikchaddha
- misconfiguration/rethinkdb-admin-console.yaml by tess
- misconfiguration/sound4-directory-listing.yaml by @arafatansari
- misconfiguration/syncthing-dashboard.yaml by @fabaff
- misconfiguration/webalizer-statistics.yaml by @0x_Akoko
- exposures/configs/cypress-web-config.yaml by tess
- exposed-panels/completeview-web-panel.yaml by tess
- exposed-panels/connect-box-login.yaml by @fabaff
- exposed-panels/esphome-panel.yaml by @fabaff
- exposed-panels/fortinet/fortios-management-panel.yaml by @mbmy
- exposed-panels/mystrom-panel.yaml by @fabaff
- exposed-panels/pulsar-admin-console.yaml by @ritikchaddha
- exposed-panels/pulsar-adminui-panel.yaml by @ritikchaddha
- exposed-panels/pulsar360-admin-panel.yaml by tess
- exposed-panels/saltstack-config-panel.yaml by @pussycat0x
- exposed-panels/sqlbuddy-panel.yaml by nullfuzz
- network/detection/teamspeak3-detect by @pussycat0x
- file/android/deep-link-detect.yaml by Hardik-Solanki
- headless/headless-open-redirect.yaml by @theamanrawat
- miscellaneous/exposed-file-upload-form.yaml by @geeknik
- technologies/default-lighttpd-placeholder-page.yaml by @idealphase
New Contributors
- @mbmy made their first contribution in #5857
- @valievkarim made their first contribution in #6603
Full Changelog: v9.3.5...v9.3.6